Analysis of Cyber Security Features in Industry 4.0 Maturity Models

The increasing digitization and networking of machines and plants has been leading to significant changes in the industrial sector for several years. Particularly in combination with the Internet and other disruptive technologies such as cloud computing, many opportunities and new business models are emerging. This change in industry is subsumed under the term Industry 4.0 and represents an important basis for the future economic success of many companies, especially small and medium-sized manufacturing companies. However, there are also many risks associated with this transformation, particularly with regard to cyber security. Against the backdrop of increasing dependence on networked information technology, the attack surface of companies is increasing. To address the problem, executives need to know the current state of their companies' security maturity. To this end, it is necessary to assess the negative impact on business caused by cyber security attacks in Industry 4.0. So-called maturity models are useful instruments for this purpose. However, it has not yet been thoroughly investigated which maturity models from the literature can be used to assess cyber security in the context of Industrie 4.0 technologies. We have therefore developed a methodology to identify maturity models related to Industrie 4.0 and analyze them with respect to their applicability in the cyber security context. The aim is to use the analysis to identify maturity models most relevant to industry for the cross-sectional topic of cyber security in Industrie 4.0. The results can then be used by companies when integrating security strategies into their own corporate strategy.